diff options
| author | Steve Kondik <steve@cyngn.com> | 2016-07-25 22:11:33 -0700 |
|---|---|---|
| committer | Steve Kondik <steve@cyngn.com> | 2016-07-25 22:11:33 -0700 |
| commit | 4a24ffeb6a44b2a044c2c3ce4e5aad8956e7157a (patch) | |
| tree | deb1012dc6c7e0c91f3625ee43342ee6670d7beb /sepolicy | |
| parent | cdb0ea61fac9c30b3563db2d2682f06e9ca9f0f4 (diff) | |
| download | vendor_replicant-4a24ffeb6a44b2a044c2c3ce4e5aad8956e7157a.zip vendor_replicant-4a24ffeb6a44b2a044c2c3ce4e5aad8956e7157a.tar.gz vendor_replicant-4a24ffeb6a44b2a044c2c3ce4e5aad8956e7157a.tar.bz2 | |
sepolicy: More policy for sdcardfs
Change-Id: Iddc6f86bd1e4b9942139acf9b7e75279b3865b8a
Diffstat (limited to 'sepolicy')
| -rw-r--r-- | sepolicy/file_contexts | 7 | ||||
| -rw-r--r-- | sepolicy/system_server.te | 2 |
2 files changed, 9 insertions, 0 deletions
diff --git a/sepolicy/file_contexts b/sepolicy/file_contexts index 706c84a..c0ed4fe 100644 --- a/sepolicy/file_contexts +++ b/sepolicy/file_contexts @@ -55,3 +55,10 @@ # bash /system/xbin/bash u:object_r:shell_exec:s0 + +# emulated storage via sdcardfs +/mnt/runtime/(default|read|write)/emulated/[0-9](/.*)? u:object_r:media_rw_data_file:s0 +/storage/emulated/[0-9](/.*)? u:object_r:media_rw_data_file:s0 +/mnt/shell/emulated/([1-9])?[0-9](/.*)? u:object_r:media_rw_data_file:s0 +/data/media\.tmp(/.*)? u:object_r:media_rw_data_file:s0 + diff --git a/sepolicy/system_server.te b/sepolicy/system_server.te index 6aaf50c..39ee935 100644 --- a/sepolicy/system_server.te +++ b/sepolicy/system_server.te @@ -7,3 +7,5 @@ allow system_server persist_property_file:dir rw_dir_perms; allow system_server persist_property_file:file { create_file_perms unlink }; allow system_server storage_stub_file:dir { getattr }; + +allow system_server media_rw_data_file:dir r_dir_perms; |